Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
File: PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft (raw, json)
Hash identifier: oWyN80NucDUkfsbDRqf2vtkd3+lgtTt902LvH7sh67A=
Subject key identifier: 71:FF:E2:F6:B2:92:5E:6B:74:9C:69:F0:E4:EC:37:73:C8:C6:8C:2C
Authority key identifier: 3D:23:75:8D:FB:6F:1D:43:DC:D6:4D:0F:0A:B2:7E:F7:15:13:59:52
Certificate issuer: /CN=3d23758dfb6f1d43dcd64d0f0ab27ef715135952
Certificate serial: 01974B1F6140E71DD403A72938CD6755D45F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PSN1jftvHUPc1k0PCrJ-9xUTWVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
Manifest number: 045D
Signing time: Sat 07 Jun 2025 16:00:37 +0000
Manifest this update: Sat 07 Jun 2025 16:00:37 +0000
Manifest next update: Sun 08 Jun 2025 16:00:37 +0000
Files and hashes: 1: PSN1jftvHUPc1k0PCrJ-9xUTWVI.crl (hash: YUl/BDkd9QvbkNziZqg0D9t0Nq5EgqlYQisS1aahWik=)
2: cNQzFblAKvFr8hGK7lwE2E-QroQ.roa (hash: 6L0JpdKsg5wIV7DiGvLclmuCfLf4+RgtvQ0jAlVXODk=)
3: sq8t5TnYeFbLwzKDRurrhu8TSwI.roa (hash: BEQOlbgnZNiMmu4zSM6xloAN2ehefN/KrPp5K3vJnWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
rsync://rpki.ripe.net/repository/DEFAULT/PSN1jftvHUPc1k0PCrJ-9xUTWVI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:61:40:e7:1d:d4:03:a7:29:38:cd:67:55:d4:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d23758dfb6f1d43dcd64d0f0ab27ef715135952
Validity
Not Before: Jun 7 16:00:37 2025 GMT
Not After : Jun 8 16:00:37 2025 GMT
Subject: CN=71ffe2f6b2925e6b749c69f0e4ec3773c8c68c2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:96:70:f7:db:ae:46:ae:d2:62:43:be:70:59:
e2:4b:3b:38:43:31:3c:a1:6f:35:7d:88:52:fa:b3:
86:77:5e:67:42:6f:52:02:84:db:5e:79:01:54:00:
9f:12:4f:36:b5:c1:01:37:45:8d:f8:24:06:b2:32:
66:ec:2c:71:57:bf:22:3b:1a:13:0c:d5:22:fb:3b:
36:5e:87:6e:fe:b7:78:96:40:cf:3f:8f:bd:09:b0:
50:54:de:0e:86:0f:62:7c:d3:b9:19:0e:d9:20:23:
c0:09:6e:fe:f6:d3:67:d8:48:84:d2:32:77:9a:42:
49:cb:dc:04:aa:7b:8f:05:dd:74:6c:b6:4e:38:55:
f5:8e:ed:4a:ec:a6:48:bc:6a:bd:d8:86:a3:60:e4:
21:ff:b6:a4:73:8e:5f:d8:ae:f1:79:fd:c5:79:20:
0d:76:6d:bd:f7:c2:5a:01:4c:59:1e:7f:5d:92:75:
09:ce:cb:03:2f:95:3d:73:c7:0f:dd:6a:93:4b:b5:
35:ed:46:ba:4e:b9:3b:32:2c:4d:93:7a:c5:00:69:
48:89:96:65:ea:56:7a:a1:53:79:1a:7e:f0:ac:9e:
37:6a:44:4f:40:27:f5:7d:5b:20:0d:39:85:01:b8:
a5:8a:37:d2:05:cc:6c:fb:c0:c3:39:da:d9:35:a9:
47:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:FF:E2:F6:B2:92:5E:6B:74:9C:69:F0:E4:EC:37:73:C8:C6:8C:2C
X509v3 Authority Key Identifier:
keyid:3D:23:75:8D:FB:6F:1D:43:DC:D6:4D:0F:0A:B2:7E:F7:15:13:59:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PSN1jftvHUPc1k0PCrJ-9xUTWVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/66efb4-d2ec-40d6-9a3e-7990e87bbd5f/1/PSN1jftvHUPc1k0PCrJ-9xUTWVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:25:c4:d9:ee:da:c3:34:6a:3d:a3:24:12:06:5b:15:2e:24:
e3:e3:49:05:df:a0:32:ad:90:f9:91:94:97:a6:5b:5c:cc:06:
73:8d:f6:ce:d2:32:1b:f8:d8:cc:be:a9:d7:d4:c4:a3:56:13:
cd:fe:1f:bf:b3:6f:0c:b3:44:02:19:49:02:02:0f:6a:a8:16:
75:db:f4:2c:33:67:0d:d2:67:f0:c0:fc:4f:1f:52:e9:f8:22:
6f:7c:f8:88:c7:0e:09:91:71:eb:5a:52:59:6f:df:29:51:d3:
44:6b:96:e1:03:c2:96:dc:52:72:2c:47:06:83:ac:e2:c2:ae:
7d:a3:40:4e:14:93:89:35:c6:18:59:e2:e0:37:04:60:3f:09:
63:0f:f7:fb:06:08:35:c5:6a:5f:b8:61:70:04:da:41:79:ea:
ca:80:fd:b8:4f:c9:19:3d:51:52:eb:01:fa:61:52:9e:b8:80:
e5:f0:9e:a8:d6:8e:06:cf:91:98:84:24:c0:70:75:42:9f:df:
22:72:8c:e4:a9:bb:0c:46:a0:65:af:ab:74:11:40:73:2e:06:
79:c6:35:1d:20:1c:a9:71:fc:a5:80:60:d0:c1:a6:20:37:37:
c4:25:f4:3e:48:3a:aa:f3:c4:f9:59:27:91:2f:a1:9f:0b:8e:
69:4c:e9:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLH2FA5x3UA6cpOM1nVdRfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkMjM3NThkZmI2ZjFkNDNkY2Q2NGQwZjBhYjI3ZWY3MTUx
MzU5NTIwHhcNMjUwNjA3MTYwMDM3WhcNMjUwNjA4MTYwMDM3WjAzMTEwLwYDVQQD
Eyg3MWZmZTJmNmIyOTI1ZTZiNzQ5YzY5ZjBlNGVjMzc3M2M4YzY4YzJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ZZw99uuRq7SYkO+cFniSzs4QzE8
oW81fYhS+rOGd15nQm9SAoTbXnkBVACfEk82tcEBN0WN+CQGsjJm7CxxV78iOxoT
DNUi+zs2Xodu/rd4lkDPP4+9CbBQVN4Ohg9ifNO5GQ7ZICPACW7+9tNn2EiE0jJ3
mkJJy9wEqnuPBd10bLZOOFX1ju1K7KZIvGq92IajYOQh/7akc45f2K7xef3FeSAN
dm2998JaAUxZHn9dknUJzssDL5U9c8cP3WqTS7U17Ua6Trk7MixNk3rFAGlIiZZl
6lZ6oVN5Gn7wrJ43akRPQCf1fVsgDTmFAbilijfSBcxs+8DDOdrZNalHNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHH/4vaykl5rdJxp8OTsN3PIxowsMB8GA1UdIwQY
MBaAFD0jdY37bx1D3NZNDwqyfvcVE1lSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFNOMWpmdHZIVVBjMWswUENySi05eFVUV1ZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC82NmVmYjQtZDJlYy00MGQ2LTlhM2Ut
Nzk5MGU4N2JiZDVmLzEvUFNOMWpmdHZIVVBjMWswUENySi05eFVUV1ZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC82NmVmYjQtZDJlYy00MGQ2LTlhM2UtNzk5MGU4N2JiZDVm
LzEvUFNOMWpmdHZIVVBjMWswUENySi05eFVUV1ZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZiXE2e7a
wzRqPaMkEgZbFS4k4+NJBd+gMq2Q+ZGUl6ZbXMwGc432ztIyG/jYzL6p19TEo1YT
zf4fv7NvDLNEAhlJAgIPaqgWddv0LDNnDdJn8MD8Tx9S6fgib3z4iMcOCZFx61pS
WW/fKVHTRGuW4QPCltxScixHBoOs4sKufaNAThSTiTXGGFni4DcEYD8JYw/3+wYI
NcVqX7hhcATaQXnqyoD9uE/JGT1RUusB+mFSnriA5fCeqNaOBs+RmIQkwHB1Qp/f
InKM5Km7DEagZa+rdBFAcy4GecY1HSAcqXH8pYBg0MGmIDc3xCX0Pkg6qvPE+Vkn
kS+hnwuOaUzp5g==
-----END CERTIFICATE-----
Generated at Sat Jun 7 20:30:51 2025 by rpki-client